Tableau Server Unaffected by Apache Solr 7.4.0 <= 7.7.3 / 8.0.0 <= 8.11.0 RCE

Publiceringsdatum: Sep 17, 2025

Beskrivning

CVE-2021-44228
Security Scans may indicate an Apache Solr 7.4.0 <= 7.7.3 / 8.0.0 <= 8.11.0 RCE vulnerability in Tableau Server.

Cause

If the version of Apache Solr running on the remote host is at least 7.4.0 through 7.7.3 or 8.0.0 through 8.11.0, Tableau Server software can be flagged for the RCE vulnerability when running a security scan.

Lösning

Tableau Server currently uses Apache Solr 8.10, which may be flagged as vulnerable to Log4J Version 2.14.1/CVE-2021-44228. However, current Tableau Products do not use the default Log4J version 2.14.1 component which is vulnerable to CVE-2021-44228. As Tableau has upgraded its log4j component to a non-vulnerable version, it is not impacted by this vulnerability.

Please ensure all mitigation and upgrade guidance has been followed regarding Apache Log4j2 vulnerability (Log4shell).

For any further concerns regarding this issue, please visit https://security.salesforce.com/contact.

Knowledge-artikelnummer

001498523

Löste denna artikel ditt problem?

Berätta för oss vad vi kan förbättra!

Tableau Server Unaffected by Apache Solr 7.4.0 <= 7.7.3 / 8.0.0 <= 8.11.0 RCE

Cause

General Information

Required Cookies

Functional Cookies

Advertising Cookies

General Information

Required Cookies

Functional Cookies

Advertising Cookies

Cookie List